DNS resolution is required when a local server accesses a website. Before DNS resolution, the IP address of the destination domain name will be obtained from the local hosts file. Therefore, you can modify the hosts file to direct local access traffic to WAF so as to test the connectivity of the route to the website through WAF. This avoids direct modification of DNS resolution records that may affect Internet users' access to the website.

1. Log in to the WAF Console and choose Web Application Firewall -> Defense settings on the left sidebar. In the domain name list, view the VIP address of waf.qcloudwaf.com.
   
2. Modify the hosts file.
   • In Windows, modify C:\Windows\System32\drivers\etc\hosts by adding the following entry.
     Format: VIP address + domain name connected to WAF
     
   • In Linux, modify /etc/hosts by adding the following entry.
     Format: VIP address + domain name connected to WAF
     
3. Test access.
   (1) Access the website from your local computer. If the website can be opened properly, the connectivity of the route to the real server through WAF is normal.
   (2) Enter the following URL in your browser to access it:

   http://waf.qcloudwaf.com/?test=alert(123)  

   (3) If the browser returns a blocked message, the WAF’s protection features are working properly.